2 matches found
AZL-63878 CVE-2025-47711 affecting package nbdkit for versions less than 1.35.3-4
There's a flaw in the nbdkit server when handling responses from its plugins regarding the status of data blocks. If a client makes a specific request for a very large data range, and a plugin responds with an even larger single block, the nbdkit server can encounter a critical internal error,...
AZL-63875 CVE-2025-47712 affecting package nbdkit for versions less than 1.35.3-4
A flaw exists in the nbdkit "blocksize" filter that can be triggered by a specific type of client request. When a client requests block status information for a very large data range, exceeding a certain limit, it causes an internal error in the nbdkit, leading to a denial of service...